APM: RDP persistence using windows username

Question

Hi all&nbsp;
We have SSL VPN on our F5 APM. Logon is using combo of active directory creds and a safenet 2FA solution.&nbsp;
If I have an RDP session published to a webtop, can I (with iRule or whatever) load balance this to 2x RDP session hosts with the persistence configured by AD username? i.e. user MYDOMAIN\danj connects to APM, then he always ends up at RDP box 2, and never hits 1 unless 2 is down. (I appreciate maintaining this mapping might not be possible across restart of the BIG-IP box.)&nbsp;
This requirement is in place because the RDP boxes are effectively management workstations, and some of the installed client software relies on local config and temp files, so ideally the user should always hit the same box.&nbsp;
thanks&nbsp;
Dan&nbsp;

kevin_davies_40 · Answer

Create a virtual server with your RDP servers behind it. Then use RDP session persistence. Then have your weptop icon point to this virtual server. Just be aware of how msrdp persistence works https://support.f5.com/kb/en-us/solutions/public/9000/000/sol9093.html

Forum Discussion

APM: RDP persistence using windows username

1 Reply

F5 Academy at AppWorld 2026

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

Connection Rest f5

Kubernetes cert-manager + LetsEncrypt + F5

The GSLB pool is providing an incorrect IP to end users

Unable to ping from some self ip on Velos

Not seeing the latest F5OS-A when running Journeys

Related Content

F5 XC – Persistence and Resiliency pt. I (persistence)

Persist connection based on NTLM username

Overview of MITRE ATT&CK Tactic : TA0003 - Persistence

Massive DDoS, DanaBot Dismantled, Scraped Discord Messages and Signal Blocks Windows Recall

F5 BIG-IP Access Policy Manager (APM) Machine Tunnels for Windows

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS